SCA Information Security Specialist

Save the Children International has an exciting opportunity for a SCA Information Security Specialist to join our global team.

 

Team and Job Purpose

 

The Information Security Specialist role is critical to increasing and then maintaining security maturity across Save The Children Association (SCA) Members, allowing them to meet their obligations under the Mutual Accountability Framework minimum standard for information security. 

The Information Security Specialist will act as the primary contact for information security matters between SCA Member organisations and SCI within the region to which they are assigned and offer independent objective advice, guidance and support for the senior leadership teams and functional teams. 

They will also be required to lead or assist with incident management processes both in SCI and SCA Members.

Ultimately, the Information Security Specialist will help achieve and maintain SCA and SCI compliance through the implementation of transparent IT Security policies, systems and procedures.

 

Job Title: SCA Information Security Specialist

Reports To: Head of SCA Information Security Services

Work Pattern: Hybrid/Remote with flexible working options available 

Contract Length: Permanent

Grade: P3

Location: Any approved Save the Children International office location. For a full list of locations that Save the Children International can hire in, please visit: Hiring Locations

Time Zone (that the role holder must be available to work in): Global

Right to Work: The successful candidate must possess the unrestricted right to work in their current or preferred location for the duration of employment. 

Language Requirements: English [Fluency in English as a minimum is required for all roles due to working in a Global team]

International Travel Requirements: Yes, up to 10%

Budget Responsibility: None

People Management Responsibility: None

 

Principal Accountabilities

Information Security Assessment

• Carrying out regular assessments of current information security practices across SCA Member organizations.

• Supporting the delivery of vulnerability assessments and penetration tests (and other Shared Services) with the SCI Information Security & Assurance team.

• Establish key performance indicators (KPIs) to measure the effectiveness of security initiatives.

• Regularly report on security metrics and progress toward maturity goals to the Head of SCA Information Security Services.

Policy Development and Implementation

• Support and advise the Member’s Point of Contacts (PoC) during the implementation, and maintenance of IT security policies, standards, and procedures. This could include the writing and reviewing of new policies and procedures.

• Ensure Member policies align with the Mutual Accountability Framework and other regulatory requirements and are implemented effectively within the Member.

Training and Awareness

• Support the delivery of Member information security training programs for staff at all levels, including training content and phishing simulations.

• Foster a culture of security awareness within the organization.

Incident Management Support

• Assist in information security incident management processes, including identification, containment, eradication, recovery and testing.

• Coordinate communication and reporting of security incidents to relevant stakeholders.

Stakeholder Engagement

• Serve as the primary point of contact for information security matters within assigned regions.

• Develop strong working relationships with Member PoCs and other key stakeholders. Provide expert advice and support to senior leadership and functional teams on all issues relating to information security.

• Prepare and present reports on security compliance and maturity to senior management.

Risk Management

• Support risk assessment activities to identify and prioritize potential security threats. Support the development of appropriate risk management processes where not in place.

• Recommend risk mitigation strategies and monitor their effectiveness.

Collaboration and Communication

• Collaborate with IT teams and other departments to integrate information security into all business processes.

• Help facilitate clear and regular communications regarding security initiatives and concerns.

Continuous Improvement

• Stay informed about the latest trends and best practices in information security.

• Recommend improvements to security strategies based on industry developments and organizational needs.

 

Experience and Skills

Essential

1. Good knowledge of ISO/IEC 27001 and NIST Cybersecurity Framework (CSF)

2. At least two years of experience working in an information security programme or project environment

3. Good understanding of IT infrastructure including cloud, networks and information management systems

4. Capability to convey technical information effectively to non-technical stakeholders in a clear and comprehensive manner

5. Ability to work with a range of business stakeholders to understand and articulate their activities in line with defined standards

6. Good verbal and written communication skills (in English)

7. Self-motivated, with a proactive and collaborative approach, and a strong results orientation

8. Commitment to Save the Children mission and values

 

Education and Qualifications

Essential

• Degree or diploma in Computer Science / Business Technology / Information Security, or relevant experience 

Desirable

• Security related certification/s

 

Working at Save the Children International

Save the Children is the world's leading organisation for children, employing ~25,000 staff. We save children's lives. We fight for their rights. We help them fulfil their potential. Through our work in 116 countries, we put the most deprived and marginalised children first.

We know that great people make a great organisation, and that our employees play a crucial role in helping us achieve our ambitions for children. We value our people and offer a meaningful and rewarding career, along with a collaborative and inclusive environment where ambition, creativity, and integrity are highly valued.

The work here is challenging but is also immensely rewarding. At Save the Children, you will be in good company, working with talented, like-minded individuals who are determined to ensure that all children survive, learn, and are protected. Your contribution will help ensure children's voices are heard at the highest levels, and that we achieve our global strategy, Ambition for Children 2030, and reach every last child.

 

Diversity, Equity and Inclusion and Equal Opportunities

DEI is core to our vision, values and global strategy. Save the Children is committed to creating a truly diverse, equitable and inclusive organisation, and one which will support us in our vision to ensure every child attains the right to survival, protection, development, and participation.

We are committed to equal employment opportunities, regardless of gender, sexual orientation, race, colour, ethnic origin, nationality, disability, marital or civil partnership status, gender reassignment, pregnancy and maternity, caring or parental responsibilities, age, or beliefs and religion. We are committed to diversifying our staff to better represent the communities we serve and actively welcome underrepresented groups to apply.

Reasonable adjustments will be made should any candidate invited to interview require this.

 

Application Information

Please attach a copy of your CV and cover letter with your application. A full copy of the role profile can be found here via the job listing. It is recommended that you save a copy of the role profile as it will no longer be available after the advert closes.

Applications will be reviewed on a rolling basis and the job advert may be closed earlier than advertised subject to the volume of suitable applicants. Please submit your application at your earliest convenience to avoid disappointment.

 

Our recruitment process:

1. Application review by our recruiting team based on your CV and cover letter
2. Two-stage competency-based interviews with the hiring team
3. Some recruitment may include an additional assessment or case study stage, or a third stage interview
4. If successful, you will receive a conditional offer of employment, followed by your contract subject to passing background checks

We need to keep children and adults safe so our selection process includes rigorous background checks and reflects our commitment to the protection of children and adults from abuse. All employees are expected to carry out their duties in accordance with our Code of Conduct and all policies and procedures relating to Anti-harassment, Health and Safety, Safeguarding, and DEI and Equal Opportunities.

 

Save the Children does not charge a fee at any stage of the recruitment process.